Job Description

The Audit Management Compliance Assurance (AMCA) in IHiS Chief Risk Office (CRO) is responsible for Audit Management and management reporting of CRO KPIs. The Audit Management team will implement streamlined processes for tracking & management of CRO compliance in alignment to corporate, security and regulatory policies. The team shall ensure continuous improvements is put in place for compliance training and competency within CRO. The Audit Management team will also take on level 1.5 function for compliance self assessment and partnering with CRO groups to establish baseline for clarity of compliance/risk level, and improve overall compliance level within IHIS.

We are looking for experienced personnel to be part of the team that plan, manage, drive and deliver initiatives in the CRO Audit Management Compliance Assurance team. He/She will work with IHiS staff in other divisions such as project managers, production support, security specialists, program & project governance to define and scope the initiative, execute the rollout plan and put in place BAU processes for sustainability and continuous improvement.

Role and Responsibilities

1. Part of the team within the Audit Management to implement the Audit Management processes and tools used within the Chief Risk Office.

2. Engagement, communication and promotion of the established audit management framework, model and processes to key stakeholders and the broader community.

3. Provide secretariat support to the Audit Watchlist Meeting and Audit Watchlist Management Meeting.

4. Manage multiple audit/compliance tracking.

5. Follow-up with audit issue owners to ensure timely completion of corrective and preventive actions.

6. Prepare reports and statistics on audit issue status for senior management team.

7. Deliver quarterly audit management training.

8. Administer the Audit Tracking and Reporting System (ARTS).

9. Facilitate migration to a new tool for audit issue remediation tracking.

Requirements / Qualifications

1. At least 8 years of experience in IT industry with minimum of 2 years of experience in internal audits or as primary contact for internal auditors.

2. Practitioner who is familiar with assessment of IT General Controls, security framework, regulatory requirements for CII or IT security policies.

3. Ability to establish and cultivate relationships with a variety of key stakeholders.

4. Ability to work under a fast-paced and dynamic environment.

5. Well-developed communication, negotiation and professional writing skills.

6. Good inter-personal and stakeholder engagement skills,

7. Degree in Computer Science, Computer Engineering or equivalent, although consideration will be given to experience and certifications in lieu of degree.

8. Strong in MS Excel and SharePoint (user with full control rights).

9. Strong in data analysis. Able to translate raw data into management summaries (charts, dashboards, etc).

10. Working experience in preparing reports for senior management consumption.

11. Involvement in tools deployment involving data migration is an advantage.

12. COBIT, CISA, CIA, CISM, CISSP certification would be advantageous

13. Experience in healthcare industry is an advantage.

#LI-IHIS36

IHiS